Join SAIC’s team delivering the best in class Service Desk, End User Services, Operations Engineering, Infrastructure Architecture, and Technical Program Management information technology services to a federal agency.
The Security lead designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions. Conducts risk and vulnerability assessment at the network, system and application level. Conducts threat modeling exercises. Develops and implements security controls and formulates operational risk mitigations along with assisting in security awareness programs. Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access. Researches, evaluates and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy. Prepares security reports to regulatory agencies. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. This includes process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Supports the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports. Periodically conducts of a review of each system's audits and monitors corrective actions until all actions are closed.
Supervise, coordinate and/or perform additions and changes to network hardware and operating systems, and attached devices; including investigation, analysis, recommendation, configuration, installation, and testing of new network hardware and software. Provide direct support in the day-to-day operations on network hardware and operating systems including the evaluation of system utilization, monitoring response time and primary support for detection and correction of operational problems. Troubleshoot at the physical level of the network, working with network measurement hardware and software, as well as physical checking and testing of hardware devices at the logical level working with communication protocols. Participate in planning design, technical review and implementation for new network infrastructure hardware and network operating systems for voice and data communication networks.
Roles and Responsibilities
· Point of Contact (POC) for the following;
· Endpoint Protection – anti-virus, host firewall, port protection, threat prevention
· Firewall – site categorization, URL blocking, stateful inspection, permit rules between trusted / untrusted network zones.
· Authorization – infrastructure security control compliance inspection, contingency planning, and documentation update
· Continuous Diagnostics and Mitigation (CDM) and functional control
HS and nine (9) years of experience; Bachelors and five (5) years or more experience; Masters and three (3) years or more experience.
US Citizenship required
US Citizenship required